Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3321 7.4 重要
Network 		axios project axios axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) 		CVE-2026-42033 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3322 5.3 警告
Network 		axios project axios axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42034 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3323 7.4 重要
Network 		axios project axios axios projectのaxiosにおける複数の脆弱性 CWE-113
CWE-1321
CVE-2026-42035 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3324 5.3 警告
Network 		axios project axios axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42036 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3325 5.3 警告
Network 		axios project axios axios projectのaxiosにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-42037 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3326 7.5 重要
Network 		axios project axios axios projectのaxiosにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-42038 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3327 7.5 重要
Network 		axios project axios axios projectのaxiosにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-42039 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3328 3.7
Network 		axios project axios axios projectのaxiosにおける複数の脆弱性 CWE-116
CWE-626
CVE-2026-42040 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3329 6.5 警告
Network 		axios project axios axios projectのaxiosにおける複数の脆弱性 CWE-1321
CWE-287
CVE-2026-42041 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
3330 5.4 警告
Network 		axios project axios axios projectのaxiosにおける複数の脆弱性 CWE-183
CWE-201
CVE-2026-42042 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315211 9.8 CRITICAL
Network 		oretnom23 electric_billing_management_system A vulnerability was found in SourceCodester Electric Billing Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /?page=tracks of th… CWE-89
SQL Injection 		CVE-2024-8339 2024-09-5 01:14 2024-08-31 Show GitHub Exploit DB Packet Storm
315212 9.8 CRITICAL
Network 		oretnom23 music_gallery_site A vulnerability classified as critical was found in SourceCodester Music Gallery Site 1.0. Affected by this vulnerability is an unknown functionality of the file /php-music/classes/Master.php?f=delet… CWE-89
SQL Injection 		CVE-2024-8336 2024-09-5 01:11 2024-08-30 Show GitHub Exploit DB Packet Storm
315213 - - - A sensitive information disclosure vulnerability exists in ZZCMS v.2023 and before within the eginfo.php file located at /3/E_bak5.1/upload/. When accessed with the query parameter phome=ShowPHPInfo,… - CVE-2024-44820 2024-09-5 01:09 2024-09-5 Show GitHub Exploit DB Packet Storm
315214 6.1 MEDIUM
Network 		cdevroe unmark unmark 1.9.2 is vulnerable to Cross Site Scripting (XSS) via application/views/marks/add_by_url.php. CWE-79
Cross-site Scripting 		CVE-2024-41349 2024-09-5 01:08 2024-08-30 Show GitHub Exploit DB Packet Storm
315215 9.8 CRITICAL
Network 		organizr organizr Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/settyping.php. CWE-89
SQL Injection 		CVE-2024-41372 2024-09-5 01:08 2024-08-30 Show GitHub Exploit DB Packet Storm
315216 6.1 MEDIUM
Network 		organizr organizr Organizr v1.90 is vulnerable to Cross Site Scripting (XSS) via api.php. CWE-79
Cross-site Scripting 		CVE-2024-41371 2024-09-5 01:08 2024-08-30 Show GitHub Exploit DB Packet Storm
315217 9.8 CRITICAL
Network 		organizr organizr Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php. CWE-89
SQL Injection 		CVE-2024-41370 2024-09-5 01:08 2024-08-30 Show GitHub Exploit DB Packet Storm
315218 6.1 MEDIUM
Network 		phpipam phpipam phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via app\admin\import-export\import-load-data.php. CWE-79
Cross-site Scripting 		CVE-2024-41358 2024-09-5 01:07 2024-08-30 Show GitHub Exploit DB Packet Storm
315219 6.1 MEDIUM
Network 		baijunyao bjyadmin bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting (XSS) via Public/statics/umeditor1_2_3/php/getContent.php CWE-79
Cross-site Scripting 		CVE-2024-41351 2024-09-5 01:07 2024-08-30 Show GitHub Exploit DB Packet Storm
315220 6.1 MEDIUM
Network 		baijunyao bjyadmin bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting (XSS) via Public/statics/umeditor1_2_3/php/imageUp.php CWE-79
Cross-site Scripting 		CVE-2024-41350 2024-09-5 01:07 2024-08-30 Show GitHub Exploit DB Packet Storm